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transmitting said information related to the user and said security level of 
said device to an authentication management server connected to the network, 

authenticating the user by said server in accordance with said information 
related to the user and said security level of said device; 

transmitting security parameters from the server to each device on the 
network; 

storing said security parameters by each device; and 

processing said security parameters received from said server, thereby 

distributively and dynamically configuring the security of the network to address 

new modes of attack.— 

—3 1 . (New) The method of claim 30, wherein said security parameters comprise a list 
of authorized computer client/server applications and information enabling each 
device to analyze messages related to said client/server applications.— 

—32. (New) The method of claim 3 1, further comprising the steps of: 

analyzing the messages related to said client/server applications by said 
device; 

filtering the messages related to said client/server applications by said 
device; and 

altering the messages related to said client/server applications by said 
device, thereby establishing a firewall.— 

—33 . (New) The method of claim 30, wherein said security parameters comprise a list 
of computer equipment which the user is authorized to communicate with.— 
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—34. (New) The method of claim 33, further comprising the steps of: 

enabling said device to transmit messages between said computer 

equipment associated with the user and a computer equipment on said list; and 
blocking said device from transmitting messages between said computer 

associated with the user and a computer equipment not on said list. — 

— 35. (New) The method of claim 30, further comprising the steps of: 

customizing said device in accordance with a private encipherment key 

provided by said authentication module; 

storing public encipherment keys associated with private encipherment keys 

which customize the devices by said server. 

—36. (New) The method of claim 35, wherein said security parameters comprise a list 
of computer equipment and the corresponding public encipherment key which the 
user is authorized to communicate with, in an enciphered manner. — 

—37. (New) The method of claim 36, further comprising the step of enciphering by 
said device communications between said computer equipment associated with the 
user and a computer equipment on said list by combining the private encipherment 
key of said device with the public encipherment key of said computer equipment 
on said list. — 

— 38. (New) A system for distributively and dynamically securing a communications 
network secure, comprising: 

a network device interconnected between each computer equipment to be 
secured and the network, said device comprising: 
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at least two input/output interfaces for intercepting communications 
between a computer equipment connected to said device and the network; 

an authentication module for obtaining information related to a user of said 
computer equipment and for defining a security level of said device; 

a transmitter for transmitting said information related to the user and said 
security level of said device; 

a storage device; and 

a processor; and 

an authentication management server connected to the network comprising: 

a processor for authenticating the user in accordance with said information 

related to the user and said security level; 

a management device for managing the authentications and the security 

levels; 

a transmitter for transmitting security parameters to each device on the 
network; and 

wherein said storage device is operable to store said security parameters 
and said processor of said device is operable to process said security parameters. — 

—39. (New) The system of claim 38, wherein said security parameters comprise a list 
of authorized computer client/server applications and information enabling each 
device to analyze messages related to said client/server applications. — 

—40. (New) The system of claim 39, wherein said processor said device comprises: 
an analyzer for analyzing the messages related to said client/server 
applications; 



706160.1 



5 



GRYN 202 - CAT 



a filter for filtering the messages related to said client/server applications; 

and 

an altering device for altering messages related to said client/server 
applications.— 

—41. (New) The system of claim 38, wherein said security parameters comprise a list 
of computer equipment which the user is authorized to communicate with.— 

—42. (New) The system of claim 4 1 , wherein said processor of said device comprises 
a controlling device for controlling said device to transmit messages between said 
computer equipment associated with the user and a computer equipment on said 
list and to block messages between said computer equipment associated with the 
user and a computer equipment not on said list— 

—43 . (New) The system of claim 38, wherein said authentication module of said device 
is operable to customize said device in accordance with a private encipherment 
key; and wherein said server is operable to store all public encipherment keys 
associated with private encipherment keys which customize the devices. ~ 

—44. (New) The system of claim 43, wherein said security parameters comprise a list 
of computer equipment and the corresponding public encipherment key which the 
user is authorized to communicate with, in an enciphered manner. ~ 

—45. (New) The system of claim 44, wherein said device further comprises an 
encipherment module for enciphering communications between said computer 
equipment associated with the user and a computer equipment on said list by 
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combining the private encipherment key of said device with the public 
encipherment key of said computer equipment on said list. — 

—46. (New) A server for distributively and dynamically securing a communications 

network, comprising: 

a processor for processing information received from a plurality of network 

devices to authenticate users, each information being related to a user of a 

computer equipment connected to a device; 

a management device for managing the authentication of the users; and 
a transmitter for transmitting security parameters to said devices. — 

--47. (New) The server of claim .46, wherein said security parameters comprise a list 
of authorized computer client/server applications and information enabling each 
device to analyze messages related to said client/server applications. — 

—48. (New) The server of claim 46, wherein said security parameters comprise a list 
of computer equipment which a user is authorized to communicate with.— 

—49. (New) The server of claim 46, further comprising a storage device for storing all 
the public encipherment keys associated with private encipherment keys which 
customize said devices.— 

—50. (New) The server of claim 49, wherein said security parameters comprise a list 
of computer equipment and the corresponding public encipherment key which the 
user (U) is authorized to communicate with, in an enciphered manner.— 
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—51. (New) A device for securing a communications network secure, said device being 
interconnected between each computer equipment to be secured and said network, 
comprising: 

at least two input/output interfaces for intercepting communications 
between a computer equipment connected to said device and the network; 

an authentication module for obtaining information related to a user of said 
computer equipment and for defining the security level of said device, 

a transmitter for transmitting information related to the user and said 
security level of said device to an authentication management server connected to 
the network; 

a storage device for storing security parameters received from said server; 
and 

a processor for processing said security parameters. — 

—52. (New) The device of claim 51, wherein said security parameters comprise a list 
of authorized computer client/server applications and information enabling each 
device to analyze messages related to said client/server applications.— 

—53. (New) The device of claim 52, wherein said processor further comprising: 

an analyzer for analyzing the messages related to said client/server 
applications; 

a filter for filtering the messages related to said client/server applications; 

and 

an altering device for altering messages related to said client/server 
applications. — 
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—54. (New) The device of claim 51, characterized in that the security parameters 
comprise a list of computer equipment which the user is authorized to 
communicate with.— 

—55. (New) The device of claim 54, wherein said processor is operable to permit 
messages to be transmitted between said computer equipment associated with the 
user and a computer equipment on said list, and operable to block messages 
between said computer equipment associated with the user and a computer 
equipment not on said list. — 

—56. (New) The device of claim 5 1 , wherein said authentication module of said device 
is operable to provide a private encipherment key for customizing said device.— 

—57. (New) The device of claim 56, wherein said security parameters comprise a list 
of computer equipment and a corresponding public encipherment key which the 
user is authorized to communicate with, in an enciphered manner.— 

—58. (New) The device of claim 57, turther comprising an encipherment module for 
enciphering communications between said computer equipment associated with 
the user and a computer equipment on said list by combining the private 
encipherment key of said device with the public encipherment key of said 
computer equipment on said list. — 
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